Open dankamongmen opened 3 years ago
Given that (1) we run with some privileges and (2) we call out to some processes, we need be extra certain that we're doing it safely. Audit for failure to set PATH or fail to sanitize user input on the way to exec().
PATH
exec()
Given that (1) we run with some privileges and (2) we call out to some processes, we need be extra certain that we're doing it safely. Audit for failure to set
PATHor fail to sanitize user input on the way toexec().